Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/IyPWFeLTL_eRJIswWX9O9mM-Lpc.roa
File: IyPWFeLTL_eRJIswWX9O9mM-Lpc.roa (raw, json)
Hash identifier: ukBNwFxzNsy2NWKDF5vILHypy+b6qxcRDYXDpIGCKeM=
Subject key identifier: 23:23:D6:15:E2:D3:2F:F7:91:24:8B:30:59:7F:4E:F6:63:3E:2E:97
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 01856C6F03F11688124275B994A46A9C5E59
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/IyPWFeLTL_eRJIswWX9O9mM-Lpc.roa
Signing time: Sun 01 Jan 2023 08:24:52 +0000
ROA not before: Sun 01 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136918
IP address blocks: 2a0e:46c4:2200::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:03:f1:16:88:12:42:75:b9:94:a4:6a:9c:5e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2323d615e2d32ff791248b30597f4ef6633e2e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:04:d6:44:9f:32:78:0c:60:2b:87:8e:1c:f3:
95:16:08:9b:2c:b9:4b:bc:e8:aa:c1:7b:1f:83:3d:
e3:de:b4:04:71:51:29:6d:ea:5d:76:b2:bc:0d:21:
77:1a:36:98:b3:33:f4:f0:2c:1a:7f:fd:52:cc:20:
65:19:19:c9:3f:3e:4c:4a:64:a1:d6:72:a7:5f:77:
73:01:98:75:d9:c7:31:9b:5c:58:bd:50:7a:8f:cc:
6d:59:98:02:52:2f:08:26:b5:30:ad:a5:03:99:11:
5f:ef:09:64:c8:51:80:23:57:2a:b5:a3:e2:e5:34:
e8:92:09:11:ce:0e:eb:aa:84:e7:9d:de:b5:51:5a:
e8:91:73:8c:54:6d:c2:48:0e:e6:ff:b7:c5:54:80:
ad:8a:56:42:a7:c7:10:42:9a:45:b5:e1:64:a8:9a:
09:33:26:a6:48:fa:a2:e3:82:c3:fc:02:84:de:e9:
44:e2:37:94:7a:06:ff:1d:f7:85:2b:fe:4e:dd:38:
bc:06:37:13:97:f4:22:da:4d:5b:19:a1:5c:72:ad:
42:54:4f:05:75:c0:51:22:88:5a:65:c3:ec:0e:e3:
c3:b3:fc:16:1e:6a:87:36:62:8b:8f:92:b5:71:39:
92:b1:31:98:d2:1a:fd:55:64:7b:f9:23:ae:3d:73:
73:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:23:D6:15:E2:D3:2F:F7:91:24:8B:30:59:7F:4E:F6:63:3E:2E:97
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/IyPWFeLTL_eRJIswWX9O9mM-Lpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2200::/40
Signature Algorithm: sha256WithRSAEncryption
8a:c3:cf:93:f5:f0:fb:cd:a0:41:e2:8b:ab:f6:77:a1:89:29:
62:c1:78:b9:ee:9d:20:c5:ef:fd:56:66:a5:e9:32:45:a2:39:
6b:c1:21:f0:e9:c8:f9:a4:00:27:52:ac:c2:03:51:24:7b:ce:
47:02:b1:18:d3:33:f1:80:10:80:93:92:42:ea:5e:44:f0:c5:
cc:e4:55:0e:a6:db:ce:e9:17:31:d9:03:ad:46:ba:fa:31:a6:
3e:f3:63:61:01:f2:0b:d6:b4:90:b7:62:94:71:56:c5:a4:04:
47:c2:47:8c:82:52:ae:12:5d:d3:03:d3:56:b1:33:e0:ae:9e:
af:a6:d5:65:3f:b9:0c:ad:7b:23:67:8e:50:62:04:40:83:da:
6c:46:6e:96:5f:b0:c0:94:14:9f:5b:49:6d:38:89:cb:3a:ca:
a9:2e:49:58:a8:3a:b1:4c:84:b8:c3:ce:d5:d0:a6:43:af:03:
0c:15:53:ab:2f:db:83:8a:54:6c:fe:2a:cc:47:a8:29:3f:c8:
42:61:b4:3a:6b:1f:6c:7a:a7:74:91:f0:bd:0f:86:4e:e1:28:
22:8f:cf:be:fa:cb:06:a9:80:07:71:34:68:5c:0c:c3:e1:0a:
71:b0:3a:0b:31:3d:5e:76:46:e7:18:f4:12:77:db:6a:26:21:
92:81:c2:43
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVsbwPxFogSQnW5lKRqnF5ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MGU1NDUwZDE0ODY3ODBhYmE1NGYwNDVlYzQ4MDJmMTlm
MGI0ZjcwHhcNMjMwMTAxMDgyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzIzZDYxNWUyZDMyZmY3OTEyNDhiMzA1OTdmNGVmNjYzM2UyZTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjATWRJ8yeAxgK4eOHPOVFgibLLlL
vOiqwXsfgz3j3rQEcVEpbepddrK8DSF3GjaYszP08Cwaf/1SzCBlGRnJPz5MSmSh
1nKnX3dzAZh12ccxm1xYvVB6j8xtWZgCUi8IJrUwraUDmRFf7wlkyFGAI1cqtaPi
5TTokgkRzg7rqoTnnd61UVrokXOMVG3CSA7m/7fFVICtilZCp8cQQppFteFkqJoJ
MyamSPqi44LD/AKE3ulE4jeUegb/HfeFK/5O3Ti8BjcTl/Qi2k1bGaFccq1CVE8F
dcBRIohaZcPsDuPDs/wWHmqHNmKLj5K1cTmSsTGY0hr9VWR7+SOuPXNzNwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFCMj1hXi0y/3kSSLMFl/TvZjPi6XMB8GA1UdIwQY
MBaAFDcOVFDRSGeAq6VPBF7EgC8Z8LT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgt
ODU4ZGNlNTdmY2RiLzEvSXlQV0ZlTFRMX2VSSklzd1dYOU85bU0tTHBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgtODU4ZGNlNTdmY2Ri
LzEvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg5GxCIw
DQYJKoZIhvcNAQELBQADggEBAIrDz5P18PvNoEHii6v2d6GJKWLBeLnunSDF7/1W
ZqXpMkWiOWvBIfDpyPmkACdSrMIDUSR7zkcCsRjTM/GAEICTkkLqXkTwxczkVQ6m
287pFzHZA61Guvoxpj7zY2EB8gvWtJC3YpRxVsWkBEfCR4yCUq4SXdMD01axM+Cu
nq+m1WU/uQyteyNnjlBiBECD2mxGbpZfsMCUFJ9bSW04ics6yqkuSVioOrFMhLjD
ztXQpkOvAwwVU6sv24OKVGz+KsxHqCk/yEJhtDprH2x6p3SR8L0Phk7hKCKPz776
ywapgAdxNGhcDMPhCnGwOgsxPV52RucY9BJ322omIZKBwkM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:15 2024 by rpki-client on console-fra.rpki-client.org